Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x.org x server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1699
The ProcSetEventMask function in difs/events.c in the xfs font server for X.Org X11R6 through X11R6.6 and XFree86 prior to 3.3.3 calls the SendErrToClient function with a mask value instead of a pointer, which allows local users to cause a denial of service (memory corruption and...
X X.org X11 6.4
X X.org X11 6.6
X X.org X11 6.3
X X.org X11 6.0
X X.org X11 6.5.1
X X.org X11 6.1
Xfree86 Xfree86
NA
CVE-2010-4818
The GLX extension in X.Org xserver 1.7.7 allows remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via (1) a crafted request that triggers a client swap in glx/glxcmdsswap.c; or (2) a crafted length or (3) a negative value i...
X.org X.org 1.7.7
NA
CVE-2010-4819
The ProcRenderAddGlyphs function in the Render extension (render/render.c) in X.Org xserver 1.7.7 and previous versions allows local users to read arbitrary memory and possibly cause a denial of service (server crash) via unspecified vectors related to an "input sanitization...
X X.org-xserver 1.7
X X.org-xserver
X X.org-xserver 1.7.6.902
X X.org-xserver 1.7.7
NA
CVE-2011-4028
The LockServer function in os/utils.c in X.Org xserver prior to 1.11.2 allows local users to determine the existence of arbitrary files via a symlink attack on a temporary lock file, which is handled differently if the file exists.
X.org X Server 1.11.0
X.org X Server
NA
CVE-2011-4029
The LockServer function in os/utils.c in X.Org xserver prior to 1.11.2 allows local users to change the permissions of arbitrary files to 444, read those files, and possibly cause a denial of service (removed execution permission) via a symlink attack on a temporary lock file.
X.org X Server 1.11.0
X.org X Server
1 EDB exploit
1 Github repository
NA
CVE-2012-2118
Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows malicious users to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.
X.org X11 1.11
NA
CVE-2011-0465
xrdb.c in xrdb prior to 1.0.9 in X.Org X11R7.6 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in a hostname obtained from a (1) DHCP or (2) XDMCP message.
X X11 R7.0
X X11 R3
X X11 R6.1
X X11 R6.8.0
Matthias Hopf Xrdb 1.0.2
X X11 R6.7
X X11 R7.2
X X11 R2
X X11
X X11 R7.1
X X11 R7.5
X X11 R5
X X11 R6.9.0
X X11 R7.3
X X11 R1
X X11 R6.8.1
X X11 R6.4
Matthias Hopf Xrdb 1.0.4
Matthias Hopf Xrdb
Matthias Hopf Xrdb 1.0.7
Matthias Hopf Xrdb 1.0.5
X X11 R4
NA
CVE-2010-3448
drivers/platform/x86/thinkpad_acpi.c in the Linux kernel prior to 2.6.34 on ThinkPad devices, when the X.Org X server is used, does not properly restrict access to the video output control state, which allows local users to cause a denial of service (system hang) via a (1) read o...
Linux Linux Kernel
NA
CVE-2010-2240
The do_anonymous_page function in mm/memory.c in the Linux kernel prior to 2.6.27.52, 2.6.32.x prior to 2.6.32.19, 2.6.34.x prior to 2.6.34.4, and 2.6.35.x prior to 2.6.35.2 does not properly separate the stack and the heap, which allows context-dependent malicious users to execu...
Linux Linux Kernel 2.6.32.5
Linux Linux Kernel 2.6.35.1
Linux Linux Kernel 2.6.32.12
Linux Linux Kernel 2.6.32.9
Linux Linux Kernel 2.6.32
Linux Linux Kernel 2.6.32.3
Linux Linux Kernel 2.6.32.17
Linux Linux Kernel 2.6.34.1
Linux Linux Kernel 2.6.32.11
Linux Linux Kernel
Linux Linux Kernel 2.6.32.14
Linux Linux Kernel 2.6.32.6
Linux Linux Kernel 2.6.32.15
Linux Linux Kernel 2.6.32.18
Linux Linux Kernel 2.6.32.4
Linux Linux Kernel 2.6.32.16
Linux Linux Kernel 2.6.34.3
Linux Linux Kernel 2.6.32.7
Linux Linux Kernel 2.6.32.8
Linux Linux Kernel 2.6.32.2
Linux Linux Kernel 2.6.32.1
Linux Linux Kernel 2.6.34.2
NA
CVE-2010-1166
The fbComposite function in fbpict.c in the Render extension in the X server in X.Org X11R7.1 allows remote authenticated users to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a crafted request, related to an incorrect macr...
X X.org 7.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »